The new DNS Only server, ServerDNS, is setup, as per The Guide, as standalone, which I expected would mean that it would never send DNS.

But both ServerUSA and ServerAU now have all 4 domains in their DNS. This is not good, as I don't want my AU clients to know about my USA clients, and vice versa.

What have I done wrong?

Thanks

Darryn

Click to expand...

In a cPanel DNS Cluster, all servers in a cluster will contain all DNS zones.

Members of a DNS cluster can be set to 1 of 2 modes:

Synchronize Changes: As soon as a DNS zone is changed, push changes to all zones in the cluster.

Standalone: Don't push any zones, let other servers in the cluster retrieve zones from this server.

Basically, you set your DNSONLY machine to Standalone since it isn't creating any DNS zones that need to be pushed to the cluster. Also, you set your cPanel/WHM servers to Synchronize Changes so DNS changes propagate through the cluster as they happen.

Since the goal of a DNS Cluster is to make zones available on all servers in the cluster, there is currently no method to make only certain servers aware of a specific servers' domains.

Keep in mind, the only users that can see the DNS zones populated via the DNS cluster are root-level users. Remember, DNS Clustering establishes a root trust relationship, so it is ideal that all servers in a DNS cluster be administered by the same company/entity. It is not advised to allow dedicated server and VPS customers to enter this root trust relationship.